CVE-2012-4328

critical

Published 2012-08-14 · Modified 2026-04-29

CVSS v3

—

CVSS v2

10.0

VIR risk

10.0

Description

Unspecified vulnerability in the MAPI in vBulletin Suite 4.1.2 through 4.1.12, Forum 4.1.2 through 4.1.12, and the MAPI plugin 1.4.3 for vBulletin 3.x has unknown impact and attack vectors.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — https://www.vbulletin.com/forum/showthread.php/400165-vBulletin-Security-Patch-for-vBulletin-4-1-12-for-Suite-amp-Forum-04-23-2012

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — https://www.vbulletin.com/forum/showthread.php/400164-vBulletin-Security-Patch-for-vBulletin-4-1-2-4-1-11-for-Suite-amp-Forum-04-23-2012

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — https://www.vbulletin.com/forum/showthread.php/400162-vBulletin-3-x-MAPI-Plugin-1-4-3-released-with-security-patch-04-23-2012

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — http://secunia.com/advisories/48917

Application impact

Vendor	Product	Versions
vbulletin	mapi	`1.4.3`
vbulletin	vbulletin_forum	`4.1.2`
vbulletin	vbulletin_forum	`4.1.12`
vbulletin	vbulletin_suite	`4.1.2`
vbulletin	vbulletin_suite	`4.1.12`
vbulletin	vbulletin	`3.0`
vbulletin	vbulletin	`3.5`
vbulletin	vbulletin	`3.6`
vbulletin	vbulletin	`3.7`

References

Verify integrity in audit chain (admin only). AS-IS.